New Malicious iPhone Worm Picking Up Steam

Unlike the first relatively benign version, this one steals data and installs a bot.

Security companies identified another variant of a hack of jailbroken iPhones this past weekend. The first reports came in from F-Secure, which said that this variant was an actual worm with a C&C (Command and Control) server which appears to be in Lithuania, according to analysts. Later reports say the server has been taken down.

I want to repeat that this only affects iPhones that have been jailbroken and on which the user has installed SSH. I don't have a lot of first-hand experience with iPhones, but I'm told that a lot of the techier users who jailbreak iPhones go on to install a slew of UNIX tools including SSH as a package, and that this is why a lot of users are vulnerable. But I don't think anyone has any numbers or sense of how widespread the vulnerability is.